Manualshelf

Specifications

ManualsBrandsHP ManualsComputer equipment3350 - Cisco NAC Appliance
231232233234235236237238239240
7-4
Cisco NAC Appliance - Clean Access Manager Configuration Guide
OL-28003-01
Chapter 7 User Management: Configuring Authentication Servers
Adding an Authentication Provider
Adding an Authentication Provider
The following are the general steps to add an authentication server to the Clean Access Manager:
Step 1 Go to User Management > Auth Servers > New.
Step 2 From the Authentication Type list, choose the authentication provider type.
Step 3 For Provider Name, type a name that is unique for authentication providers. If you intend to offer your
users the ability to select providers from the login page, be sure to use a name that is meaningful or
recognizable for your users, since this name will be used.
Step 4 Choose the Default Role (user role) to be assigned to users authenticated by this provider. This default
role is used if not overridden by a role assignment based on MAC address or IP address. The default role
is also assigned in the case that LDAP/RADIUS mapping rules do not result in a successful match.
Step 5 Enter an optional Description for the authentication server.
Step 6 Complete the fields specific to the authentication type you chose, as described in the following sections.
Step 7 When finished, click Add Server.
The new authentication source appears under User Management > Auth Servers > List.
Click the Edit icon next to the auth server to modify settings.
Click the Mapping icon next to the auth server to configure VLAN-based mapping rules for any
server type, or attribute-based mapping rules for LDAP, RADIUS, and Cisco VPN SSO auth types.
Specific parameters to add each auth server type are described in the following sections:
Kerberos, page 7-5
RADIUS, page 7-6
Windows NT, page 7-15
LDAP, page 7-16
Active Directory Single Sign-On (SS0), page 7-22
Windows NetBIOS SSO, page 7-22
Cisco VPN SSO, page 7-24
Allow All, page 7-26
Guest, page 7-26
Specific parameters to add each auth server type are described in the following sections:
Authenticating Against a Backend Active Directory, page 7-28
Note To set a default auth provider for users configure the Default Provider option under Administration >
User Pages > Login Page > Edit > Content. See Chapter 5, “Configuring User Login Page and Guest
Access.